Legal claims defining the scope of protection, as filed with the USPTO.
1. A key cookie, said key cookie being a secure cookie comprising: a) a domain field capable of holding domain data to associate said key cookie to a domain where said key cookie is valid; b) at least one name field capable of holding name data; c) at least one value field capable of holding value data derived from conforming client data; d) an expiration field capable of holding cookie expiration data; and e) an encrypted session key, said encrypted session key capable of being used for encrypting said value data contained in another of said at least two secure cookie; and wherein: 1. said key cookie is created for use in transferring secure data between a client and a server; 2. said client capable of presenting said conforming client data; 3. said server capable of using said conforming client data to create at least two of said secure cookie; 4. at least one of said at least two secure cookie capable of being transported between said server and said client over a network; 5. at least one of said at least two secure cookie capable of being stored in a client storage; and 6. said client capable of being authenticated by a secure attribute service between said client and said server, said secure attribute service capable of comparing said conforming client data with said value data when authenticating said client.
2. A key cookie according to claim 1 , wherein at least some of said conforming client data is retrieved from a client.
3. A key cookie according to claim 1 , wherein said conforming client data includes the client's IP address.
4. A key cookie according to claim 1 , wherein said conforming client data includes a password.
5. A key cookie according to claim 1 , wherein said conforming client data includes a Kerberos ticket.
6. A key cookie according to claim 1 , wherein said conforming client data includes a digital signature.
7. A key cookie according to claim 6 , wherein said digital signature is verified that said digital signature belongs to a client.
8. A key cookie according to claim 1 , wherein said conforming client data includes data derived from at least one of the following: a) the Client's IP address; b) a password; c) a Kerberos ticket; d) credit card data; e) social security number; f) a digital signature of the client; and g) a home address.
9. A key cookie according to claim 1 , wherein said key cookie further contains a digital signature of the client on a time-stamp.
10. A seal cookie, said seal cookie being a secure cookie comprising: a) a domain field capable of holding domain data to associate said seal cookie to a domain where said seal cookie is valid; b) at least one name field capable of holding name data; c) at least one value field capable of holding value data derived from conforming client data; and d) an expiration field capable of holding cookie expiration data; and wherein: 1. said seal cookie is created for use in transferring secure data between a client and a server; 2. said client capable of presenting said conforming client data; 3. said server capable of using said conforming client data to create at least two of said secure cookie; 4. at least one of said at least two secure cookie capable of being transported between said server and said client over a network; 5. at least one of said at least two secure cookie capable of being stored in a client storage; 6. said client capable of being authenticated by a secure attribute service between said client and said server, said secure attribute service capable of comparing said conforming client data with said value data when authenticating said client; and 7. said seal cookie capable of being used by said server to determine if at least one of another of said at least two secure cookie has been altered.
11. A seal cookie according to claim 10 , wherein at least some of said conforming client data is retrieved from a client.
12. A seal cookie according to claim 10 , wherein said conforming client data includes the client's IP address.
13. A seal cookie according to claim 10 , wherein said conforming client data includes a password.
14. A seal cookie according to claim 10 , wherein said conforming client data includes a Kerberos ticket.
15. A seal cookie according to claim 10 , wherein said conforming client data includes a digital signature.
16. A seal cookie according to claim 15 , wherein said digital signature is verified that said digital signature belongs to a client.
17. A seal cookie according to claim 10 , wherein said conforming client data includes data derived from at least one of the following: a) the Client's IP address; b) a password; c) a Kerberos ticket; d) credit card data; e) social security number; f) a digital signature of the client; and g) a home address.
18. A seal cookie according to claim 10 , wherein said key cookie further contains a digital signature of the client on a time-stamp.
Unknown
September 13, 2011
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.